General Topics

Can not block x-vpn on port 80

Please can we have some assistance with blocking x-vpn. We currently have

Decryption enabled

DNS proxy enabled

The threats are set to reset/drop/block in screenshots 

Despite all of this, the HTTP-2 connection method in x-vpn successfully establi

User-ID Connection Security Won't Work

UserID Agent version 9.0.5-8
Firewall 9.0.8

Windows Server 2016 UserID Agent Servers x2

I've tried following this guide and numerous others (https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClGFCA0)

Keep getting 'Failed to vali

Prisma Cloud Certification

Is there anything available to get free discount vouchers or any link to register to get updates on upcoming offers on certification of Prisma cloud (for partners and customers).

How to find active high bandwidth user

If a Palo Alto firewall is experiencing high throughput, what's the best way to find the source user/IP while the high throughput is occurring?

We have all of our security policies set to log on session end, so that traffic log wouldn't help since the

what is the latest recommended stable PAN-OS version ?

Hi All,

Can you please suggest latest recommended stable PAN-OS version and panorama.

we need to upgrade all the PAN-OS with latest stable version.

please suggest 

Custom report emails blank??

I have 4 custom reports that if I 'run now' they display relevant information.  But once I put them in a group and scheduled them to email/run everynight they come through blank with the message 'There is no PA-report-01 report on Sunday, Mar 18.'   

User-ID and Microsoft Entra ID Internal

We recently setup our CIE to work with our Microsoft Entra ID so when on GlobalProtect, we can track users and their traffic.

We are now looking for solutions for a similar setup for internal users (not on GlobalProtect but on network). We are tryi

packet dropped no route for ip multicast

Hi Team,

I have a multicast setup. I am able to see that the PIM neighbourship is completed and igmp membership also fine.

I can see my traffic in multicast fib with the correct incoming and outgoing interfaces. but the multicast packet is not reachin

Lab practice difficulty

Hi all, i am new to this community and very excited to be a part of this. I am currently in my learning phase of palo alto firewall and panorama. I have successfully establish firewall lab in eve-ng and done all the practical real world scenario labs

Any big issues with preferred release 10.2.10-h9?

Hello. We're preparing to upgrade ~20 firewalls (mix of 800-series and some VM series) to 10.2.10-h9 to address CVE-2024-0012. Wondering if anyone is running 10.2.10-h9 now and how things are working? Any issues with Global Protect? We're heavy users

Secondary FW not sending alerts

Hello,

I have a pa 450 HA set up.

I configured alerts to send an email anytime an administrator logs in or a change is committed. But these are only sending from the primary firewall; if I log into the secondary FW no alerts are sent.

Is there

xmlapi: query not available

Hi everyone,

I'm trying to get the Prisma Remote Network details via an API call.

From the  Panorama webgui debug page, I'm able to do this... like you see here:

that red line  has all  the information I want with via an API call,

so I tried:

Need assistance with PA-445: general setup/VR

Hello Everyone, I need a little assistance

I am new to Palo Altos...I have just received and trying to set up an PA-445...but I ran into the following issues:

- no incoming traffic hitting on anything (outbound traffic is OK: computers plugged into